Configuration Guide for Kerberos Client Products on HP-UX 11.0 | HP-UX 11i v1 | HP-UX 11i v1.6 | HP-UX 11i v2
Configuring the Kerberos Environment
Server Configuration Procedures
Chapter 3 81
shell% /opt/krb5/sbin/kadmind
You can also start the Kerberos daemons by typing the command
prompt:
% /sbin/init.d/krbsrv start
Verify that the daemons have started properly by checking for the
messages in the system log files.
Step 7. Once the KDC is set up and running, it is time to create the principals of
all the hosts and users into the Kerberos database.
Configuring KDC Server - Microsoft Windows 2000
KDC
1. Use the Active Directory Management tool to create a new account
for the UNIX host:
• From Administrators Tools, select Active Directory Users and
Computers.
• Select the Users folder, select Action from the top menu, click
New, then click User.
• Add the name of a UNIX host as a userby entering the
hostname
as the user name, and host/
hostname
as user logon name.
2. Create a keytab file for the Kerberos client on Microsoft Windows
2000 KDC.
• Locate ktpass on Microsoft Windows 2000
• Use ktpass to create the KEYTAB file and set up the account for
the UNIX host.
C:> ktpass -princ host/
hostname
@
NT-DNS-REALM-NAME
-mapuser
hostname
-pass
your-password
-out
hostname
.keytab
where:
—
hostname
is the unix host DNS name.
—
NT-DNS-REALM-NAME
is the uppercase name of the Windows
2000 domain. All domain names should be in upper case.
—
your-password
is the password for this principal,
hostname
.